On June 28, DataBreaches received a message from an unrecognized sender. The subject was: “Breach of Marriott hotels! Very Important!” DataBreaches’ first thought was, “Seriously? Is this yet another breach involving Marriott or are some kids just trying to leak old data?” As it turned out, this was, in fact, a new breach. But how…
Category: Business Sector
Verified Twitter accounts hacked to send fake suspension notices
Lawrence Abrams reports: Threat actors are hacking verified Twitter accounts to send fake but well-written suspension messages that attempt to steal other verified users’ credentials. Read more at BleepingComputer about how they tested the phishing scam and found that it was using Twitter’s API to verify that they user was actually inputting their true/accurate credentials….
Iranian hackers leak info of over 300,000 Israelis from tourism sites
There’s more emerging about the Sharp Boys’ group attack on Israeli tourism sites. The Jerusalem Post now reports: The personal information of over 300,000 Israelis was leaked last month by an Iranian hacker group targeting Israeli travel booking sites. The group, named Sharp Boys, claimed last month that it had obtained data from Israeli tourism sites,…
Walmart denies being hit by Yanluowang ransomware attack
Lawrence Abrams reports: American retailer Walmart has denied being hit with a ransomware attack by the Yanluowang gang after the hackers claimed to encrypt thousands of computers. In a statement to BleepingComputer, Walmart has said that their “Information Security team is monitoring our systems 24/7,” and believe the claims to be inaccurate. Read more at…
Wegmans hit with $400,000 data-breach penalty
Marcia Greenwood reports a follow-up to a data leak initially reported in June 2021: Wegmans Food Markets has been hit with a $400,000 penalty for exposing the personal information of more than 3 million customers chainwide, including more than 830,000 New Yorkers, the New York State Attorney General’s Office announced Thursday. In a statement, the…
Former Uber security chief will have to face wire fraud charges in hack coverup
Uber’s former Chief Security Officer Joseph Sullivan will have to face wire fraud charges over his alleged role in covering up a 2016 hack that exposed the personal information of millions of Uber passengers and drivers. The breach and its aftermath continue to reverberate after it was disclosed that although Uber knew it had been…